CVE-2011-3054Improper Privilege Management in Google Chrome

CWE-269Improper Privilege Management2 documents2 sources
Severity
4.3MEDIUMNVD
EPSS
0.7%
top 28.91%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Google ChromeOpensuse
Timeline
PublishedMar 22
Latest updateMay 13

Description

The WebUI privilege implementation in Google Chrome before 17.0.963.83 does not properly perform isolation, which allows remote attackers to bypass intended access restrictions via unspecified vectors.

CVSS vector

AV:N/AC:M/C:N/I:P/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages2 packages

NVDgoogle/chrome< 17.0.963.83

🔴Vulnerability Details

1
GHSA
GHSA-vxrj-r5f9-h3j4: The WebUI privilege implementation in Google Chrome before 172022-05-13
CVE-2011-3054 — Improper Privilege Management in Google | cvebase